[cisco-voip] Callmanager implementation over Internet

Matt Slaga (US) Matt.Slaga at us.didata.com
Fri Aug 18 10:04:36 EDT 2006 

Granted, the customer I deployed had no firewalls, this box was directly
out, public IP address and everything.

I explained the whole security concept to the customer, but some
customers just know what is best.  :-)

 

________________________________

From: Lelio Fulgenzi [mailto:lelio at uoguelph.ca] 
Sent: Friday, August 18, 2006 9:35 AM
To: Matt Slaga (US); Manoj Kalpage; cisco-voip at puck.nether.net
Subject: Re: [cisco-voip] Callmanager implementation over Internet

 

This worries me. We just had a talk with Cisco and they said as long as
you open only the ports you require and use CSA and AV you should be Ok.
We haven't opened things up to the Internet, but it will be a campus
allowance. We want to begin using IPC and other hardphones that don't
have CDP.

 

I can just see the hassle.

 

------------------------------------------------------------------------
--------
Lelio Fulgenzi, B.A.
Senior Analyst (CCS) * University of Guelph * Guelph, Ontario N1G 2W1
(519) 824-4120 x56354 (519) 767-1060 FAX (JNHN)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 
"I can eat fifty eggs." "Nobody can eat fifty eggs."

	----- Original Message ----- 

	From: Matt Slaga (US) <mailto:Matt.Slaga at us.didata.com>  

	To: Manoj Kalpage <mailto:manoj.kalpage at gmail.com>  ;
cisco-voip at puck.nether.net 

	Sent: Friday, August 18, 2006 8:15 AM

	Subject: Re: [cisco-voip] Callmanager implementation over
Internet

	 

	You can use the SCCP proxy by Metreos to accomplish this and
still remain secure.  

	 

	I have implemented a callmanager/unity directly on the internet
in the past for a company in your same situation.  Their server had more
worms in viruses in 1 week than I've seen in my whole life (even with
CSA & AV, they were able to take control of the server through a buffer
overflow we think and disabled these services).  Perhaps CCM5 would be
better suited for this purpose, or you could use your pix to only allow
the necessary ports.

	 

	 

	 

	
________________________________


	From: cisco-voip-bounces at puck.nether.net
[mailto:cisco-voip-bounces at puck.nether.net] On Behalf Of Manoj Kalpage
	Sent: Friday, August 18, 2006 4:23 AM
	To: cisco-voip at puck.nether.net
	Subject: [cisco-voip] Callmanager implementation over Internet

	 

	Hi All,
	We have Call Manager and Unity hosted in Data Centre. All our
clients have VPN connection to Data Centre. I am using PIX 515 at Data
Centre and PIX501 at clients side. All are working perfect except voice
quality issue some times. Since this is PBXL hosting service and
security is not that much concern, I am wondering I can setup phones to
acess CCM and Unity over the internet using gloabl IP address on Cisco
IP Phones. Has anyone every implemented CallManager and Unity over
internet? Your comment and advice would be greatly appreciated. 
	
	Best regards,
	Manoj

	
________________________________


	 

	
	Disclaimer:
	
	This e-mail communication and any attachments may contain
	confidential and privileged information and is for use by the
	designated addressee(s) named above only. If you are not the
	intended addressee, you are hereby notified that you have
received
	this communication in error and that any use or reproduction of
	this email or its contents is strictly prohibited and may be
	unlawful. If you have received this communication in error,
please
	notify us immediately by replying to this message and deleting
it
	from your computer. Thank you.

	
________________________________


	_______________________________________________
	cisco-voip mailing list
	cisco-voip at puck.nether.net
	https://puck.nether.net/mailman/listinfo/cisco-voip




-----------------------------------------
Disclaimer:

This e-mail communication and any attachments may contain
confidential and privileged information and is for use by the
designated addressee(s) named above only.  If you are not the
intended addressee, you are hereby notified that you have received
this communication in error and that any use or reproduction of
this email or its contents is strictly prohibited and may be
unlawful.  If you have received this communication in error, please
notify us immediately by replying to this message and deleting it
from your computer. Thank you.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://puck.nether.net/pipermail/cisco-voip/attachments/20060818/9f546aad/attachment-0001.html

More information about the cisco-voip mailing list